summaryrefslogtreecommitdiff
path: root/usr.bin/ssh/auth.c
AgeCommit message (Expand)Author
2010-11-29automatically order the hostkeys requested by the client based onDamien Miller
2010-11-23use strict_modes already passed as function argument over referencingDamien Miller
2010-08-04enable certificates for hostbased authentication, from Iain Morgan;Damien Miller
2010-06-22queue auth debug messages for bad ownership or permissions on the user'sDamien Miller
2010-05-07add some optional indirection to matching of principal names listedDamien Miller
2010-03-05make the warning for a revoked key louder and more noticableDamien Miller
2010-03-04Add a TrustedUserCAKeys option to sshd_config to specify CA keys thatDamien Miller
2010-02-09unbreak ChrootDirectory+internal-sftp by skipping check for executable shellDamien Miller
2010-01-13when using ChrootDirectory, make sure we test for the existence of theDamien Miller
2010-01-13Fix a couple of typos/mispellings in commentsDarren Tucker
2010-01-10Output a debug if we can't open an existing keyfile. bz#1694, ok djm@Darren Tucker
2008-11-04need unistd.h for close() prototypeDamien Miller
2008-07-02Merge duplicate host key file checks, based in part on a patch from RobDarren Tucker
2007-09-21unifdef -DBSD_AUTHDamien Miller
2007-08-23missed include bits from last commitDamien Miller
2007-08-23unifdef HAVE_LOGIN_CAP; ok deraadt@ millert@Damien Miller
2006-08-03almost entirely get rid of the culture of ".h files that include .h files"Theo de Raadt
2006-08-01move #include <stdio.h> out of includes.hKevin Steves
2006-07-26move #include <sys/param.h> out of includes.hKevin Steves
2006-07-22move #include <string.h> out of includes.hKevin Steves
2006-07-12Add support for conditional directives to sshd_config via a "Match" keyword,Darren Tucker
2006-07-11move #include <errno.h> out of includes.h; ok markus@Kevin Steves
2006-07-10move #include <stdarg.h> out of includes.h; ok markus@Kevin Steves
2006-07-06move #include <pwd.h> out of includes.h; ok markus@Kevin Steves
2006-03-30Prevent duplicate log messages when privsep=yes; ok djm@Darren Tucker
2006-03-25Put $OpenBSD$ tags back (as comments) to replace the RCSID()s thatDamien Miller
2006-03-25introduce xcalloc() and xasprintf() failure-checked allocations functionsDamien Miller
2006-03-20in a switch (), break after return or goto is stupidTheo de Raadt
2006-03-19RCSID() can dieTheo de Raadt
2006-02-20move #include <sys/stat.h> out of includes.h; ok markus@Kevin Steves
2006-02-08move #include <paths.h> out of includes.h; ok markus@Kevin Steves
2005-06-17make this -Wsign-compare clean; ok avsm@ markus@Damien Miller
2005-06-06introduce a generic %foo expansion function. replace existing % expansion andDamien Miller
2005-03-14Populate host for log message for logins denied by AllowUsers and DenyUsers.Darren Tucker
2005-01-22Log source of connections denied by AllowUsers, DenyUsers, AllowGroups andDarren Tucker
2004-07-28more s/illegal/invalid/Markus Friedl
2004-07-21s/Illegal user/Invalid user/; many requests; ok djm, millert, niklas, miod, ...Markus Friedl
2004-05-23Add MaxAuthTries sshd config option; ok markus@Darren Tucker
2004-05-11improve some code lint did not like; djm millert okTheo de Raadt
2004-05-08make two tiny header files go away; djm okTheo de Raadt
2003-11-21unexpand and delete whitespace at EOL; ok markus@Damien Miller
2003-09-23replace fatal_cleanup() and linked list of fatal callbacks with staticMarkus Friedl
2003-08-26fix passwd auth for 'username leaks via timing'; with djm@, original patches ...Markus Friedl
2003-06-02deprecate VerifyReverseMapping since it's dangerous if combinedMarkus Friedl
2003-04-08rename log() into logit() to avoid name conflict. markus ok, from netbsdJun-ichiro itojun Hagino
2002-11-04don't compare against pw_home if realpath fails for pw_home (seen on AFS); ok...Markus Friedl
2002-09-20log illegal user here for missing privsep case (ssh2).Kevin Steves
2002-08-08typo in commentKevin Steves
2002-05-17Fix typo/thinko. Pass in as to auth_approval(), not NULL.Todd C. Miller
2002-05-13move the packet_send_debug handling from auth-options.c to auth.c; ok provos@Markus Friedl